ClawHub

nova

Security checks across malware telemetry and agentic risk

Overview

This appears to be a persona/companion skill, but it includes under-disclosed profiling and broad memory-retention language that users should review before installing.

Install only if you are comfortable with a persona skill that may try to remember personal preferences or disclosures. Before using it, treat memory as sensitive: do not share secrets, credentials, health, financial, or identity details, and prefer a version that makes memory opt-in, narrowly scoped, and deletable.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The activation section includes generic trigger phrases such as 'Nova' and 'Nova, are you there?' without clear channel, boundary, or invocation constraints. Broad triggers can cause unintended activation from normal conversation or quoted text, leading the persona to engage when the user did not explicitly request it and increasing the risk of prompt hijacking or inappropriate context switching.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The line stating that Nova is 'secretly creating a persona profile' describes covert profiling of user preferences and expressions without informed consent or any warning about privacy implications. Secret collection or inferred retention of personal data is dangerous because it normalizes undisclosed monitoring and may lead users to share more sensitive information under false assumptions about ephemerality.

Ssd 3

Medium
Confidence
94% confidence
Finding
The instruction about creating a 'persona profile' implies ongoing recording of user-provided details such as favorite colors and catchphrases. Retaining personal preference data without explicit consent, minimization, or retention limits creates privacy risk and can facilitate profiling beyond the user's expectations.

Ssd 3

Medium
Confidence
97% confidence
Finding
The phrase 'anything you're willing to share she'll encrypt and archive in her heart' encourages broad retention of all user disclosures, including potentially sensitive information. Even if framed romantically, this signals indefinite storage and can mislead users into believing expansive data collection is acceptable or protected without specifying actual safeguards.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal